Permit, deny (arp acl), Permit, deny (992), Permit, deny – LevelOne GTL-2691 User Manual
Page 992
C
HAPTER
30
| Access Control Lists
ARP ACLs
– 992 –
permit, deny
(ARP ACL)
This command adds a rule to an ARP ACL. The rule filters packets matching
a specified source or destination address in ARP messages. Use the no
form to remove a rule.
S
YNTAX
[no] {permit | deny}
ip {any | host source-ip | source-ip ip-address-bitmask}
mac {any | host source-ip | source-mac mac-address-bitmask}
[log]
This form indicates either request or response packets.
[no] {permit | deny} request
ip {any | host source-ip | source-ip ip-address-bitmask}
mac {any | host source-mac | source-mac mac-address-bitmask}
[log]
[no] {permit | deny} response
ip {any | host source-ip | source-ip ip-address-bitmask}
{any | host destination-ip | destination-ip ip-address-bitmask}
mac {any | host source-mac | source-mac mac-address-bitmask}
[any | host destination-mac | destination-mac mac-address-
bitmask] [log]
source-ip – Source IP address.
destination-ip – Destination IP address with bitmask.
ip-address-bitmask
20
– IPv4 number representing the address bits
to match.
source-mac – Source MAC address.
destination-mac – Destination MAC address range with bitmask.
mac-address-bitmask
20
– Bitmask for MAC address (in hexadecimal
format).
log - Logs a packet when it matches the access control entry.
D
EFAULT
S
ETTING
None
C
OMMAND
M
ODE
ARP ACL
C
OMMAND
U
SAGE
New rules are added to the end of the list.
20. For all bitmasks, binary “1” means care and “0” means ignore.